Subject: CVS commit: [pkgsrc-2017Q1] pkgsrc/graphics/tiff
From: Benny Siegert
Date: 2017-05-06 17:08:52
Message id: 20170506150852.C8D2BFBE4@cvs.NetBSD.org
Log Message:
Pullup ticket #5404 - requested by sevan
graphics/tiff: security fix

Revisions pulled up:
- graphics/tiff/Makefile                                        1.127-1.129
- graphics/tiff/distinfo                                        1.73-1.75
- graphics/tiff/patches/patch-libtiff_tif_dir.c                 1.1
- graphics/tiff/patches/patch-libtiff_tif_dirread.c             1.2
- graphics/tiff/patches/patch-libtiff_tif_dirwrite.c            1.1
- graphics/tiff/patches/patch-tools_tiffcp.c                    1.2
- graphics/tiff/patches/patch-tools_tiffcrop.c                  1.1-1.2

---
   Module Name:    pkgsrc
   Committed By:   he
   Date:           Fri May  5 19:16:58 UTC 2017

   Modified Files:
           pkgsrc/graphics/tiff: Makefile
   Added Files:
           pkgsrc/graphics/tiff/patches: patch-tools_tiffcrop.c

   Log Message:
   Apply fix from upstream to fix CVE-2016-10092, ref.
   http://bugzilla.maptools.org/show_bug.cgi?id=2620 and
   https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a
   Bump PKGREVISION.

---
   Module Name:    pkgsrc
   Committed By:   he
   Date:           Fri May  5 19:28:23 UTC 2017

   Modified Files:
           pkgsrc/graphics/tiff: distinfo

   Log Message:
   Forgot "make mps", this one belongs to the previous update, 4.0.7nb3.

---
   Module Name:    pkgsrc
   Committed By:   he
   Date:           Fri May  5 20:06:03 UTC 2017

   Modified Files:
           pkgsrc/graphics/tiff: Makefile distinfo
           pkgsrc/graphics/tiff/patches: patch-tools_tiffcp.c

   Log Message:
   Apply fix for CVE-2016-10093
   http://bugzilla.maptools.org/show_bug.cgi?id=2610
   https://github.com/vadz/libtiff/commit/787c0ee906430b772f33ca50b97b8b5ca070faec
   Bump PKGREVISION.

---
   Module Name:    pkgsrc
   Committed By:   sevan
   Date:           Fri May  5 20:14:05 UTC 2017

   Modified Files:
           pkgsrc/graphics/tiff: Makefile distinfo
           pkgsrc/graphics/tiff/patches: patch-libtiff_tif_dirread.c
               patch-tools_tiffcrop.c
   Added Files:
           pkgsrc/graphics/tiff/patches: patch-libtiff_tif_dir.c
               patch-libtiff_tif_dirwrite.c

   Log Message:
   CVE-2017-7596
   CVE-2017-7597
   CVE-2017-7599
   CVE-2017-7600
   https://github.com/vadz/libtiff/commit/3144e57770c1e4d26520d8abee750f8ac8b75490
   Dependency for applying advisory patch.
   +http://bugzilla.maptools.org/show_bug.cgi?id=2535
   +https://github.com/vadz/libtiff/commit/0abd094b6e5079c4d8be733829240491cb230f3d
   Bump rev.
Files:
RevisionActionfile
1.125.4.2modifypkgsrc/graphics/tiff/Makefile
1.71.4.2modifypkgsrc/graphics/tiff/distinfo
1.2.2.3modifypkgsrc/graphics/tiff/patches/patch-libtiff_tif_dirread.c
1.2.2.3modifypkgsrc/graphics/tiff/patches/patch-tools_tiffcp.c
1.1.2.2addpkgsrc/graphics/tiff/patches/patch-libtiff_tif_dir.c
1.1.2.2addpkgsrc/graphics/tiff/patches/patch-libtiff_tif_dirwrite.c
1.2.2.2addpkgsrc/graphics/tiff/patches/patch-tools_tiffcrop.c